PKCERT (Computer Emergency Response Team) has issued a warning against sophisticated phishing campaigns impersonating NADRA, targeting government organizations in Pakistan. These scams aim to steal sensitive personal and financial data, potentially compromising national security and citizen privacy.
Scammers send phishing emails or messages, pretending to be from NADRA, to trick government officials into divulging confidential information or clicking on malicious links. This can lead to unauthorized access to sensitive data, financial losses, and damage to the government’s reputation.
NADRA’s Security Measures
NADRA has implemented robust security features to protect citizen data, including:
• Multi-biometric identity management: securing ID systems with fingerprint, face, and iris verification
• Secure documents: using advanced technologies like PKI, RFID chip integration, and biometric authentication
• Citizen verification: providing a platform for citizens to authenticate others’ CNIC information
To avoid falling prey to these scams, government entities and citizens must remain vigilant:
• Verify the authenticity of emails and messages before responding or clicking on links
• Use strong passwords and keep them confidential
• Regularly update antivirus software and operating systems
• Be cautious of unsolicited requests for sensitive information
Reporting Incidents
If you suspect a phishing attempt or have fallen victim to a NADRA impersonation scam, report it immediately to:
• National CERT
• NADRA’s customer support
• Relevant law enforcement agencies
Stay safe online, and remember: verification is just a click away!
